HackerOne: Subdomain Takeover
This project was a culmination of a few nights of research and one night of actual implementation. I had been following other people's findings for the same vulnerability class and decided I knew enough to try my hand at it.
My role in the project was everything since this was a solo project. I based my ideas off of previously existing knowledge.
I gained valuable skills in Open Source Intelligence gathering (OSINT) which helped my internship tremendously. I also gained experience in the soft skill of report writing as I needed to write up my findings for Starbucks to understand the vulnerability as well as which action to take to make sure this does not happen again.
Blog post for more information: here